Lucene search
K

8351 matches found

Cvelist
Cvelist
added 2022/12/15 12:0 a.m.27 views

CVE-2022-42867

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution...

8.7AI score0.34574EPSS
Exploits2References12
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.29 views

CVE-2022-42856

A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.1.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this iss...

8.6AI score0.08523EPSS
Exploits0References12
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.22 views

CVE-2022-42837

An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, watchOS 9.2. A remote user may be able to cause unexpected app termination or arbitrary code executi...

8.9AI score0.02062EPSS
Exploits0References9
CVE
CVE
added 2022/12/15 12:0 a.m.180 views

CVE-2022-46700

CVE-2022-46700 corresponds to a memory corruption issue in WebKitGTK/WebKit2GTK. The vulnerability arises from processing malicious web content, potentially allowing arbitrary code execution. Public advisories (Debian DSA-5308/5309, Fedora package update, AlmaLinux advisories) indicate that WebKi...

8.8CVSS8.6AI score0.01204EPSS
Exploits0References13Affected Software6
CVE
CVE
added 2022/12/15 12:0 a.m.86 views

CVE-2022-42861

CVE-2022-42861 is an Apple sandbox-escape vulnerability. The issue arises from insufficient checks that allowed an app to break out of its sandbox, as described in the CVE entry. According to the NVD entry, Apple fixed the vulnerability with improved checks, and addressed it in specific OS releas...

8.8CVSS7.5AI score0.0027EPSS
Exploits0References8Affected Software3
The Hacker News
The Hacker News
added 2022/12/14 3:44 a.m.85 views

New Actively Exploited Zero-Day Vulnerability Discovered in Apple Products

Apple on Tuesday rolled out security updates to iOS, iPadOS, macOS, tvOS, and Safari web browser to address a new zero-day vulnerability that could result in the execution of malicious code. Tracked as CVE-2022-42856, the issue has been described by the tech giant as a type confusion issue in the...

10CVSS1AI score0.16342EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.3 views

PT-2022-27971 · Apple · Ios +3

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 Description: An integer overflow issue was addressed through improved input validation, which could allow an app to break out of its sandbox...

8.6CVSS8AI score0.00234EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.6 views

PT-2022-27955 · Apple · Icloud For Windows +6

Name of the Vulnerable Software and Affected Versions: Apple tvOS versions prior to 16.2 Apple iCloud for Windows versions prior to 14.1 Apple macOS Ventura versions prior to 13.1 Apple iOS versions prior to 16.2 Apple iPadOS versions prior to 16.2 Apple watchOS versions prior to 9.2 Description:...

7.8CVSS7.5AI score0.00372EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.1 views

PT-2022-26636 · Apple · Ios +3

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 Description: The issue allows an app to bypass Privacy preferences. It was addressed by removing the vulnerable code. Recommendations: For iOS...

5.5CVSS5AI score0.00317EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.4 views

PT-2022-21598 · Apple · Ios +3

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 Description: The issue allows a deleted photo to be re-surfaced without authentication through the shake-to-undo feature. This was addressed with...

5.3CVSS4.7AI score0.00715EPSS
Exploits0References7
Apple
Apple
added 2022/12/13 12:0 a.m.46 views

About the security content of iOS 15.7.2 and iPadOS 15.7.2

About the security content of iOS 15.7.2 and iPadOS 15.7.2 This document describes the security content of iOS 15.7.2 and iPadOS 15.7.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

9.8CVSS9.7AI score0.44678EPSS
Exploits12References1Affected Software2
VulnCheck KEV
VulnCheck KEV
added 2022/12/13 12:0 a.m.6 views

VulnCheck KEV: CVE-2022-42864

A race condition was addressed with improved state handling. This issue is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. An app may be able to execute arbitrary code with kernel privileges...

7CVSS7.3AI score0.00856EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2022/12/13 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-23496

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.2, watchOS 9.3, iOS 15.7.2 and iPadOS 15.7.2, Safari 16.3, tvOS 16.3, iOS 16.3 and iPadOS 16.3. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS7.5AI score0.0089EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2022/12/13 12:0 a.m.1 views

VulnCheck KEV: CVE-2022-46705

A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, Safari 16.2. Visiting a malicious website may lead to address bar spoofing...

4.3CVSS6.5AI score0.00965EPSS
Exploits0References1
CISA
CISA
added 2022/12/13 12:0 a.m.14 views

Apple Releases Security Updates for Multiple Products

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the Apple security updates page for the following products and app...

2.6AI score
Exploits0References10
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.5 views

PT-2022-26620 · Apple · Ipados +4

Name of the Vulnerable Software and Affected Versions: Apple macOS versions prior to 11.7.2 Apple macOS versions prior to 12.6.2 Apple macOS versions prior to 13.1 Apple iOS versions prior to 16.2 Apple iPadOS versions prior to 16.2 Apple tvOS versions prior to 16.2 Apple watchOS versions prior t...

9.8CVSS6.3AI score0.02227EPSS
Exploits0References19
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.1 views

PT-2022-26618 · Apple · Ios +2

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.7.2 macOS versions prior to 12.6.2 macOS versions prior to 13.1 iOS versions prior to 15.7.2 iOS versions prior to 16.2 iPadOS versions prior to 15.7.2 iPadOS versions prior to 16.2 Description: The issue was...

7.8CVSS7.2AI score0.00372EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.5 views

PT-2022-21579 · Apple +4 · Ipados +7

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 Description: The issue was addressed with improved UI handling. Visiting a website that frames malicious content may lead to UI spoofing...

9.8CVSS6.5AI score0.01736EPSS
Exploits0References140
Apple
Apple
added 2022/12/13 12:0 a.m.76 views

About the security content of iOS 16.2 and iPadOS 16.2

About the security content of iOS 16.2 and iPadOS 16.2 This document describes the security content of iOS 16.2 and iPadOS 16.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

9.8CVSS9.7AI score0.44678EPSS
Exploits12References1Affected Software2
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.6 views

PT-2022-7573 · Apple +7 · Icloud For Windows +14

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 16.2 tvOS versions prior to 16.2 iCloud for Windows versions prior to 14.1 macOS Ventura versions prior to 13.1 iOS versions prior to 16.2 iPadOS versions prior to 16.2 watchOS versions prior to 9.2 Description: The...

8.8CVSS6.8AI score0.34574EPSS
Exploits2References194
Rows per page
Query Builder